Package: gawk Version: 1:3.1.5.dfsg-4 Severity: normal awk calls TCGETS (tcgetattr) on regular files, which causes all kind of extra audit errors. For example: avc: denied { ioctl } for pid=2173 comm="awk" name="master.cf" dev=hda1 ino=33064 scontext=system_u:system_r:initrc_t tcontext=system_u:object_r:postfix_etc_t tclass=file
triggered by the postfix init script. This is completely unnecessary; and I'd prefer awk not doing the ioctl, instead of adding (potentially dozens of) "dontaudit" rules to the SELinux policy... Maybe you could stat() first to see if the file actually is a device node? -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/dash Kernel: Linux 2.6.17.7 Locale: [EMAIL PROTECTED], [EMAIL PROTECTED] (charmap=UTF-8) Versions of packages gawk depends on: ii libc6 2.3.6.ds1-4 GNU C Library: Shared libraries gawk recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]